Vigil@nce - Cisco ASA: denial of service via TCP
June 2017 by Vigil@nce
This bulletin was written by Vigil@nce : https://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can send unordered TCP packets of specially chosen
sizes to a device running Cisco ASA, in order to trigger a denial
of service.
Impacted products: ASA.
Severity: 2/4.
Creation date: 20/04/2017.
DESCRIPTION OF THE VULNERABILITY
The Cisco ASA product implements quota management for TCP packet
reordering.
However, for some packet sizes, an error in the memory management
leads to memory exhaustion.
An attacker can therefore send unordered TCP packets of specially
chosen sizes to a device running Cisco ASA, in order to trigger a
denial of service.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
https://vigilance.fr/vulnerability/Cisco-ASA-denial-of-service-via-TCP-22514